VYPR
Unrated severityNVD Advisory· Published Oct 13, 2019· Updated Aug 5, 2024

CVE-2019-17536

CVE-2019-17536

Description

Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Gila CMS/Gila CMSdescription
  • Gila/Gilallm-fuzzy
    Range: <=1.11.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.